Review of wtls benchmarking Experiments



Yüklə 461 b.
tarix16.07.2017
ölçüsü461 b.



Overview



WAP Browsers & Handhelds: What is WAP?

  • WAP: Wireless Application Protocol

  • Created by WAP Forum

    • Founded June 1997 by Ericsson, Motorola, Nokia, Phone.com
    • 500+ member companies
    • Goal: Bring Internet content to wireless devices
  • WTLS: Wireless Transport Layer Security



WAP Browsers & Handhelds: What is WAP?



WAP Browsers & Handhelds: Gaining Steam



WAP Browsers & Handhelds: Security & Performance

  • Secure Connections:

    • Too long -> affects usability
    • Shorter keys -> too risky
  • How long does the crypto take?



A Review of WTLS: WTLS Goals

  • WTLS Goals

    • Authentication
    • Privacy
    • Data Integrity
  • Authentication: Public-Key Crypto (CPU intensive!!!)

  • Privacy: Symmetric Crypto

  • Data Integrity: MACs



A Review of WTLS: Crypto Basics

  • Public-Key Crypto

    • RSA (Rivest-Shamir-Adelman)
    • ECC (Elliptic Curve)
  • Certificates

  • Authentication

    • None, Client, Server, Mutual


A Review of WTLS: Server-Authentication

  • Server-Authentication Only



A Review of WTLS: Server-Authentication





A Review of WTLS: Mutual-Authentication

  • 1. Verify Server Certificate

    • ECC & RSA: Verify Signature
  • 2. Establish Session Key

    • ECC: Generate ECC-DH Key Pair & Multiply
    • RSA: Encrypt w/ Server Public Key
  • 3. Verify Client Certificate

    • ECC & RSA: Signature Generation


Benchmarking Experiments





WTLS Handshake Timing Estimates

  • Server-Authenticated Only: ECC







Discussion of Results

  • Strictly CPU time

  • Optimizations

  • Mutually authenticated handshakes could be too expensive for 1024-bit RSA on constrained microprocessors.

  • Issue: who will sign ECC certificates?



Discussion of Results



Summary / Conclusions

  • Cryptographic Execution Time for WTLS handshakes on wireless devices is significant.

  • Server-Authenticated 1024-bit RSA can be 2x as fast as 163-bit ECC

  • Mutually-Authenticated 163-bit ECC is at least 8x as fast as 1024-bit RSA



References & Acknowledgements

  • References:

    • WAP Forum, Wireless Application Protocol Specification Version 1.1, 4.30.1998
    • WAP Forum, Wireless Transport Layer Security Specification Version 1.1, 11.2.1999
    • AU-Systems WAP Browser Home Page, http://www.wapguide.com/wapguide/browser.html
    • EZOS EzWAP Browser Page, http://www.ezos.com/  
    • Psion WAP Browser Beta Page, http://wap.psion.com/
    • Neomar RIM WAP Browser Page, http://www.neomar.com/
    • Neomar Press Release, http://www.neomar.com/press/00.05.23certicom.html
  • Acknowledgements:

    • Tim Dierks, Rob Lambert, Chris Hawk (Certicom)
    • Nagendra Modadugu (Stanford)



Verilənlər bazası müəlliflik hüququ ilə müdafiə olunur ©azkurs.org 2016
rəhbərliyinə müraciət

    Ana səhifə